Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/FQjc6AKuN5mX4oLyQ0N8Mjm3rJM.roa
File: FQjc6AKuN5mX4oLyQ0N8Mjm3rJM.roa (raw, json)
Hash identifier: CPhgfGqDoDDbkFwrKrSL9eQOQRBsKC1wFtQDo+Nq6ks=
Subject key identifier: 15:08:DC:E8:02:AE:37:99:97:E2:82:F2:43:43:7C:32:39:B7:AC:93
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01928FC604D64B5E20660BD01BDC9129182A
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/FQjc6AKuN5mX4oLyQ0N8Mjm3rJM.roa
Signing time: Tue 15 Oct 2024 10:42:52 +0000
ROA not before: Tue 15 Oct 2024 10:42:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 84.21.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Oct 2024 09:44:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8f:c6:04:d6:4b:5e:20:66:0b:d0:1b:dc:91:29:18:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 15 10:42:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1508dce802ae379997e282f243437c3239b7ac93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:60:81:56:f3:68:3e:7c:d5:63:cc:84:8f:da:
c3:de:bc:bf:53:c4:9f:52:b4:b9:e0:39:51:8a:e4:
bd:b3:d9:e5:3c:85:4c:18:d2:6a:a3:ea:a8:6f:00:
62:f2:b1:8a:6c:0a:91:5c:bc:63:11:86:4e:12:17:
90:ef:aa:9c:65:85:45:c7:68:60:9b:9c:94:29:15:
c2:f6:25:13:a8:f2:43:37:f1:b7:30:81:03:41:eb:
b2:be:2f:18:c1:70:d1:07:01:f6:cd:a3:ba:65:43:
ef:b5:e4:3a:a6:4f:4b:83:88:b4:40:47:58:53:58:
85:41:cb:10:45:f9:01:30:9d:51:e9:1b:41:03:52:
13:0a:56:56:6e:a9:48:34:50:01:45:03:18:63:8d:
88:72:0a:13:aa:a0:96:6b:49:07:53:1b:23:ad:db:
99:12:30:05:09:f4:01:ac:0e:3b:93:3e:a1:29:9d:
46:5a:1b:0b:77:7a:ca:0d:08:48:37:bd:1f:46:ff:
b3:28:93:26:a2:77:7c:1b:c7:30:d9:d9:65:0d:49:
50:74:96:4d:67:ef:f3:12:7c:89:f9:f2:e9:4f:f4:
8a:31:19:1a:fa:f0:80:e8:aa:c0:c2:b7:d5:ed:30:
d2:de:d8:f2:36:8b:8e:f0:bf:5f:18:e6:9e:df:35:
68:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:08:DC:E8:02:AE:37:99:97:E2:82:F2:43:43:7C:32:39:B7:AC:93
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/FQjc6AKuN5mX4oLyQ0N8Mjm3rJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.21.172.0/24
Signature Algorithm: sha256WithRSAEncryption
55:22:8a:56:3e:f9:26:4b:dd:f1:e8:35:04:f0:f0:e8:94:65:
aa:d6:79:f1:f3:64:d9:9f:e3:8e:2d:b1:79:17:7f:3c:0e:dc:
bc:64:5d:8f:6b:c5:da:c9:ef:77:af:e4:e6:27:a2:02:7b:1d:
9d:68:92:7f:07:f6:1a:37:c8:aa:72:c7:d6:22:4a:3c:c0:ff:
ac:88:45:5d:72:fe:0b:7b:ab:2a:27:f5:0c:0f:58:74:16:21:
ad:04:a7:8b:43:6a:5f:f0:78:37:46:a5:ab:fe:b5:81:c0:e3:
93:a9:72:07:6a:79:d9:8c:02:27:e9:2c:ea:eb:85:61:bd:24:
78:43:86:47:21:85:53:f6:0f:55:33:0b:08:9d:a8:bc:e9:ac:
d4:64:38:8c:a9:42:e7:62:18:6b:81:71:be:d3:13:fb:4c:32:
a2:f3:32:76:bd:68:7f:8d:60:3c:94:c2:60:6d:7a:f8:57:88:
b9:25:fa:dc:bf:de:8f:48:04:57:50:76:d2:3a:8a:83:b2:d2:
72:16:1d:7c:47:f7:f6:37:1a:22:56:dd:d6:06:07:52:6c:cb:
03:b6:17:31:bd:df:21:72:6d:d8:63:9c:a8:e0:59:32:37:6c:
1c:78:51:56:d2:7e:0a:12:62:aa:94:96:12:11:07:86:b6:8a:
f1:02:b5:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 16 12:02:04 2024 by rpki-client on console-fra.rpki-client.org